Chrome for Android Update

Chrome for Android Update: The stable channel of Chrome for Android has been updated to 18.0.1025308. It is now available for download on Google Play and in the Google Play Store on your mobile devices, on Android 4.0, Ice Cream Sandwich, or later.  The new update includes important security and stability fixes.


Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

• [$500] [138210] Medium Information and credential disclosure by file:// URLs. Credit to Artem Chaykin.


• [$500] [138035] Medium Current-tab cross-application scripting (UXSS). Credit to Artem Chaykin.


• [$500] [144813] Medium UXSS via Intent extra data. Credit to Takeshi Terada.


• [$500] [144820] Medium Information and credential disclosure by file:// URLs. Credit to Takeshi Terada.


• [$500] [137532] Medium Android APIs exposed to JavaScript. Credit to Takeshi Terada.


• [$500] [144866] Medium Bypassing same-origin policy for local files with symlinks. Credit to Takeshi Terada.


• [$500] [141889] Medium Cookie theft by malicious local Android app. Credit to Takeshi Terada.

Known issues are available on the Chrome support site.
If you find a new issue, please let us know by filing a bug.
More information on Chrome for Android is available on the Chrome site.


Jason Kersey

Google Chrome

DIGITAL JUICE